menu
techminis

A naukri.com initiative

google-web-stories
source image

Securityaffairs

1M

read

68

img
dot

Image Credit: Securityaffairs

DPRK-linked BlueNoroff used macOS malware with novel persistence

  • SentinelLabs observed North Korea-linked threat actor BlueNoroff targeting businesses in the crypto industry with a new multi-stage macOS malware called 'Hidden Risk.'
  • The attackers used fake cryptocurrency news emails and a malicious app disguised as a PDF document to initiate the attack.
  • The malware exploits a novel persistence method through the zshenv configuration file, bypassing macOS notifications and enhancing its stealthiness.
  • The campaign is attributed to BlueNoroff, known for targeting the crypto and Web3 sectors, and demonstrates their adaptability and refinement in attack methods.

Read Full Article

like

4 Likes

For uninterrupted reading, download the app